Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in PostX – Gutenberg Post Grid Blocks 3.0.5

  • Severity: medium-risk
  • Status: Fixed
  • Publication: August 2, 2023

The PostX – Gutenberg Post Grid Blocks plugin for WordPress is vulnerable to a type of security breach called Reflected Cross-Site Scripting. This vulnerability exists in versions 3.0.5 and earlier of the plugin and is caused by the plugin not properly checking the input it receives and not properly protecting the output that it sends. This means that someone who is not authorized to access the website could inject malicious code into the website through a link or other action that they can convince a user to take.

Detected in:

Post Grid Blocks and WordPress News Plugin – PostX fixed vulnerable versions:
Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX fixed vulnerable versions:
Post Grid Gutenberg Blocks and WordPress News Plugin – PostX fixed vulnerable versions:
Post Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX fixed vulnerable versions:
PostX – Gutenberg Post Grid Blocks fixed vulnerable versions: >= * <= 3.0.5
PostX – Post Grid Gutenberg Blocks and WordPress Blog Plugin fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.